diff --git a/.github/workflows/maven-deploy.yml b/.github/workflows/maven-deploy.yml
index 775e618..4dfbe68 100644
--- a/.github/workflows/maven-deploy.yml
+++ b/.github/workflows/maven-deploy.yml
@@ -21,10 +21,6 @@ jobs:
           server-username: OSSRH_USERNAME
           server-password: OSSRH_PASSWORD
           gpg-private-key: ${{ secrets.OSSRH_GPG_SECRET_KEY }}
-          # this sets the wrong variable in settings.xml needed for maven-gpg-plugin since 3.x.x
-          # instead you need to set passphraseEnvName in your pom.xml for now
-          # gpg-passphrase: OSSRH_GPG_SECRET_KEY_PASSWORD
-      - run: cat ~/.m2/settings.xml
       # helps identify build failures due to expired keys
       - run: gpg --list-secret-keys --keyid-format=long
       - run: mvn -B -ntp versions:set -DnewVersion=$(./version.sh)
@@ -32,5 +28,7 @@ jobs:
         env:
           OSSRH_USERNAME: ${{ secrets.OSSRH_USERNAME }}
           OSSRH_PASSWORD: ${{ secrets.OSSRH_PASSWORD }}
-#          OSSRH_GPG_SECRET_KEY_PASSWORD: ${{ secrets.OSSRH_GPG_SECRET_KEY_PASSWORD }}
+          # this env var needs to be named 'MAVEN_GPG_PASSPHRASE'. if a different name is desired,
+          # it needs to be specified here and in the maven-gpg-plugin configuration variable 'passphraseEnvName'
+          # see issue: https://github.com/actions/setup-java/issues/668
           MAVEN_GPG_PASSPHRASE: ${{ secrets.OSSRH_GPG_SECRET_KEY_PASSWORD }}
diff --git a/pom.xml b/pom.xml
index 3ef4c0a..31afc5f 100644
--- a/pom.xml
+++ b/pom.xml
@@ -80,7 +80,6 @@
                 <version>3.2.4</version>
                 <configuration>
                     <bestPractices>true</bestPractices>
-<!--                    <passphraseEnvName>OSSRH_GPG_SECRET_KEY_PASSWORD</passphraseEnvName>-->
                 </configuration>
                 <executions>
                     <execution>